Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

MGMT and Data Port in ClearPass

This thread has been viewed 8 times

  • 1.  MGMT and Data Port in ClearPass

    Posted Aug 16, 2017 02:37 AM

    Hi Experts,

     

    Good Day!

     

    I would like to ask what are the traffic passing in the MGMT and DATA Port in ClearPass?

     

    Thanks



  • 2.  RE: MGMT and Data Port in ClearPass

    EMPLOYEE
    Posted Aug 16, 2017 04:00 AM

    Please check the Service Routing Technote, that is available from https://support.arubanetworks.com/Documentation/tabid/77/DMXModule/512/EntryId/7961/Default.aspx

     

    My personal advice would be to just use the management port, and only use the data port after you read and understood the Technote. ClearPass works fine with just a single interface, and having just one interface keeps your design simple in most cases.

     

    In short, when you enable both ports, all outgoing traffic will originate from the data-port, unless it is local for the management port subnet, or if there is a management route that can be set on the command-line only.